$ rpki-client -vvf rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft File: d0ZKhG930cTTZqMGuAaTn88qYBo.mft (raw, json) Hash identifier: JBYrndpTBT0U7tCSo7ARI4YuCHLSkx6jQsTkaKQA27E= Subject key identifier: 97:9D:5E:1D:C6:33:F3:24:1B:06:5F:0E:E8:60:34:33:A1:19:E3:E9 Authority key identifier: 77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A Certificate issuer: /CN=A91B74D6/serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft Manifest number: C3 Signing time: Sun 11 May 2025 04:39:49 +0000 Manifest this update: Sun 11 May 2025 04:39:48 +0000 Manifest next update: Sun 18 May 2025 04:39:48 +0000 Files and hashes: 1: d0ZKhG930cTTZqMGuAaTn88qYBo.crl (hash: 1OvN6EUfaGh9PtbhRimeCOcC6TNl9OVfKUqhkABRh2I=) 2: ABD84FB00F8A11EF943CC917C4F9AE02.roa (hash: PDnutuYB/riFGiwE/DA4jtgTvwtaDb0EZnLNk2dEE1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B74D6, serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Validity Not Before: May 11 04:39:48 2025 GMT Not After : May 18 04:39:48 2025 GMT Subject: CN=68202a14-861a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:15:93:98:14:7a:ff:66:ee:93:9d:b7:25:ea: f8:88:4f:eb:1b:9c:0b:4b:7e:34:e7:41:2d:b4:30: d6:43:be:59:a4:6f:11:1b:be:4e:f9:fa:90:39:ff: 01:af:74:4e:c1:24:a8:83:a4:c3:2c:c2:f2:d0:5f: 14:a0:91:14:fa:49:45:c4:64:ca:7f:e7:9e:c6:3c: 5f:0e:0f:ce:23:d1:21:ea:72:e1:bb:ab:96:5c:e7: 74:43:f0:34:92:de:d7:1d:0b:e1:e4:e0:5a:ed:0a: 82:d7:d0:6e:44:26:16:2f:17:ee:27:f2:b2:6b:f9: be:aa:b4:54:e3:ec:26:fb:24:94:4f:4d:c6:7c:2c: db:59:1e:4f:02:51:a7:42:99:96:ea:93:64:6a:f0: fe:0a:2b:44:e5:0c:63:ff:d2:c8:dd:f4:1e:4e:62: 15:9c:0c:a4:51:8b:23:6d:5f:b9:68:95:33:89:43: 15:8c:36:95:1b:b4:5c:fb:76:06:0b:12:b4:87:bd: 67:22:74:9d:60:dc:ef:31:c7:22:80:71:95:6f:e2: 7a:aa:a6:34:7d:49:c4:2e:8d:8d:29:f6:bd:e3:17: 1d:82:80:fa:fa:7c:69:10:aa:b8:90:7e:41:8b:8d: 8e:75:d2:d6:a3:3e:b7:f4:f0:66:cb:39:45:c7:88: 6f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:9D:5E:1D:C6:33:F3:24:1B:06:5F:0E:E8:60:34:33:A1:19:E3:E9 X509v3 Authority Key Identifier: keyid:77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:6a:4a:bf:17:e9:6f:f5:e7:41:9e:4c:3c:6b:96:9d:cb:75: 24:2d:59:14:e1:95:e8:e0:43:49:e5:2a:c0:09:9e:aa:64:93: 6c:56:7b:20:2c:c2:86:5d:0c:75:b7:d0:b7:85:41:4e:6a:05: 7e:6c:03:97:c8:71:7b:b1:e8:72:cd:3c:74:0b:18:09:9e:36: a5:7e:5e:5e:61:e9:63:3f:2d:60:3f:87:d2:fa:27:63:6e:45: 40:42:2f:42:86:c1:3a:55:98:f4:bb:1a:05:d5:c1:dd:d2:dd: cd:76:7b:a1:5a:da:56:f0:db:a6:1f:f3:03:09:ca:0c:2b:e3: 68:94:66:f4:cb:e2:f9:7d:f6:3c:66:98:c7:73:f4:84:18:36: 51:8e:28:46:b0:6d:14:3d:00:88:54:03:bf:de:8a:ec:76:1f: fa:cc:c6:3f:04:22:48:e2:0b:03:07:f4:50:22:47:3b:a9:b7: f3:33:3a:9c:da:57:bd:25:fc:43:c5:71:b4:85:6a:71:04:da: 96:a0:af:6c:77:99:91:c8:c6:d9:8e:3e:8f:94:3d:05:1b:41: 70:7f:19:b6:90:98:c7:43:e6:c6:b5:43:5a:12:64:44:d5:f9: c3:3b:d1:8a:82:dd:ff:33:ed:ad:fb:b3:72:6d:16:fb:64:66: ca:8c:1f:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc0RDYxMTAvBgNVBAUTKDc3NDY0QTg0NkY3N0QxQzREMzY2QTMwNkI4MDY5MzlG Q0YyQTYwMUEwHhcNMjUwNTExMDQzOTQ4WhcNMjUwNTE4MDQzOTQ4WjAYMRYwFAYD VQQDEw02ODIwMmExNC04NjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBWTmBR6/2buk523Jer4iE/rG5wLS34050EttDDWQ75ZpG8RG75O+fqQOf8B r3ROwSSog6TDLMLy0F8UoJEU+klFxGTKf+eexjxfDg/OI9Eh6nLhu6uWXOd0Q/A0 kt7XHQvh5OBa7QqC19BuRCYWLxfuJ/Kya/m+qrRU4+wm+ySUT03GfCzbWR5PAlGn QpmW6pNkavD+CitE5Qxj/9LI3fQeTmIVnAykUYsjbV+5aJUziUMVjDaVG7Rc+3YG CxK0h71nInSdYNzvMccigHGVb+J6qqY0fUnELo2NKfa94xcdgoD6+nxpEKq4kH5B i42OddLWoz639PBmyzlFx4hvxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJedXh3G M/MkGwZfDuhgNDOhGePpMB8GA1UdIwQYMBaAFHdGSoRvd9HE02ajBrgGk5/PKmAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzRENi9ERTIyQUQyNDBD REYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBjVFRacU1HdUFhVG44OHFZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwWktoRzkzMGNUVFpxTUd1QWFUbjg4cVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzRENi9ERTIyQUQyNDBDREYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBj VFRacU1HdUFhVG44OHFZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTakq/F+lv9edBnkw8a5ady3UkLVkU4ZXo4ENJ5SrACZ6qZJNsVnsg LMKGXQx1t9C3hUFOagV+bAOXyHF7sehyzTx0CxgJnjalfl5eYeljPy1gP4fS+idj bkVAQi9ChsE6VZj0uxoF1cHd0t3NdnuhWtpW8NumH/MDCcoMK+NolGb0y+L5ffY8 ZpjHc/SEGDZRjihGsG0UPQCIVAO/3orsdh/6zMY/BCJI4gsDB/RQIkc7qbfzMzqc 2le9JfxDxXG0hWpxBNqWoK9sd5mRyMbZjj6PlD0FG0Fwfxm2kJjHQ+bGtUNaEmRE 1fnDO9GKgt3/M+2t+7NybRb7ZGbKjB8u -----END CERTIFICATE-----Generated at Tue May 13 05:55:49 2025 by rpki-client